The servlet is mapped to / The security constraint is mapped to /* That's your problem. Map your security constraint to * instead
Gregor Schneider a écrit : > Dear all, > > we have some very odd behaviour here. > > First the basic: > > - Tomcat 5.5.17 > - Debian Sarge > - Java(TM) 2 Runtime Environment, Standard Edition (build 1.5.0_07-b03) > > We do have several Sevlets which require and use FormBased Login using > Tomcat's internal FormAuthenticator. > > Now we've created another small servlet. Copied the web.xml of our > working servlets, adapted that one and deployed it (copied to > $catalina_home/webapps). > > The servlet is deployed, and it gets called, however, we do not see > the Form where we can put in our credentials (aka Login-screen). The > necessary JSP-files are in place, rights are set properly, Tomcat in > Debug-mode doesn't show any clue in it's logs. > > This is our web.xml: > > <?xml version="1.0" encoding="ISO-8859-1"?> > <web-app version="2.4" xmlns="http://java.sun.com/xml/ns/j2ee"; > xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"; > xsi:schemaLocation="http://java.sun.com/xml/ns/j2ee > http://java.sun.com/xml/ns/j2ee/web-app_2_4.xsd";> > <security-constraint> > <web-resource-collection> > <web-resource-name>Protected Area</web-resource-name> > <url-pattern>/*</url-pattern> > </web-resource-collection> > <auth-constraint> > <role-name>domuser</role-name> > </auth-constraint> > </security-constraint> > <login-config> > <auth-method>FORM</auth-method> > <realm-name>Dom4Bereich</realm-name> > <form-login-config> > <form-login-page>/jsp/loginForm.html</form-login-page> > <form-error-page>/jsp/error.html</form-error-page> > </form-login-config> > </login-config> > <security-role> > <description>DOM-Users</description> > <role-name>domuser</role-name> > </security-role> > <servlet> > <servlet-name>SingleSignOn</servlet-name> > <servlet-class>com.cr.web.sso.CRSSO</servlet-class> > </servlet> > <servlet-mapping> > <servlet-name>SingleSignOn</servlet-name> > <url-pattern>/</url-pattern> > </servlet-mapping> > </web-app> > > We also do have a context-definition which exists in > $catalina_home/conf/Catalina/localhost/CRSSO.xml: > > <Context path="/CRSSO" > reloadable="true" > docBase="${catalina.home}/webapps/CRSSO" > workDir="${catalina.home}/work" > > > <Resource name="jdbc/SSODS" > auth="Container" > type="javax.sql.DataSource" > driverClassName="com.mysql.jdbc.Driver" > url="jdbc:mysql://dekold4712/apacheSSO" > username="username" > password="password" > maxActive="100" > maxIdle="30" > maxWait="10000"/> > > > </Context> > > Does any of you guys have any clue for us? We're really about to jump > out of the window (and it's the 3rd floor, mind you!) > > TIA > > Greg & Yassine --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
